File systems with global and local naming

ABSTRACT

A method for data storage includes specifying a plurality of File Systems (FSs) for use by multiple clients, including assigning to the FSs both respective global identifiers and respective client-specific names. The plurality of FSs is managed using the global identifiers, and files are stored for the clients in the FSs using the client-specific names.

CROSS REFERENCE TO RELATED APPLICATIONS

This U.S. patent application is a continuation of, and claims priority under 35 U.S.C. § 120 from U.S. patent application Ser. No. 17/647,162, filed on Jan. 5, 2022, which is a continuation of U.S. patent application Ser. No. 16/597,016, now U.S. Pat. No. 11,232,063, filed on Oct. 9, 2019, which is a continuation of U.S. patent application Ser. No. 15/278,040, now U.S. Pat. No. 10,474,629, filed on Sep. 28, 2016. The disclosures of these prior applications are considered part of the disclosure of this application and are hereby incorporated by reference in their entireties.

TECHNICAL FIELD

The present disclosure relates generally to data storage, and particularly to methods and systems for file-system management.

BACKGROUND

Machine virtualization is commonly used in various computing environments, such as in data centers and cloud computing. Atypical virtualized computing system includes multiple compute nodes that are interconnected by a high-speed network. The compute nodes run Virtual Machines (VMs) that consume physical resources such as Central Processing Unit (CPU), memory, persistent storage and networking resources.

Some computing systems use distributed File Systems (FSs) for persistent storage of files. Examples of distributed FSs include Google File System (GFS), Hadoop distributed file system (HDFS), Ceph, General Parallel File System (GPFS) and Lustre.

SUMMARY

An embodiment of the present disclosure that is described herein provides a method for data storage. The method includes specifying a plurality of File Systems (FSs) for use by multiple clients, including assigning to the FSs both respective global identifiers and respective client-specific names. The plurality of FSs is managed using the global identifiers, and files are stored for the clients in the FSs using the client-specific names.

In some embodiments, the global identifiers are unique across the plurality of FSs, and the client-specific names are unique only within a subset of the FSs accessible to a given client. In an embodiment, assigning the client-specific names includes assigning a same client-specific name to at least two of the FSs in the plurality. In a disclosed embodiment, specifying the FSs includes specifying for each FS a single client that is permitted to access that FS. In another embodiment, specifying the FSs includes specifying for each FS a single set of cooperating clients that are permitted to access that FS.

In some embodiments, specifying and managing the FSs includes, upon creating a new clone of an existing client having an existing FS, creating for the new clone a new FS having a new global identifier but having the same client-specific name as the existing FS. In an example embodiment, specifying and managing the FSs includes continually maintaining for the existing client a shadow disk (VDISK) corresponding to one or more of the FSs used by the existing client, and creating the new FS includes reassigning storage resources, which were assigned to the shadow VDISK, to the new FS. In an embodiment, continually maintaining the shadow VDISK includes continually allocating to the shadow VDISK storage resources that match respective storage resources of the actual VDISK. In an embodiment, one or more of the FSs are backed-up by performing block-level backup of the shadow VDISK.

There is additionally provided, in an embodiment of the present disclosure, apparatus including an interface and accordance with a data storage one or more processors. The interface is configured for communicating with one or more compute nodes that run multiple clients. The one or more processors are configured to specify a plurality of File Systems (FSs) for use by the multiple clients, including assigning to the FSs both respective global identifiers and respective client-specific names, to manage the plurality of FSs using the global identifiers, and to store files for the clients in the FSs using the client-specific names.

There is also provided, in accordance with an embodiment of the present disclosure, a computer software product, the product including a tangible non-transitory computer-readable medium in which program instructions are stored, which instructions, when read by one or more processors, cause the processors to specify a plurality of File Systems (FSs) for use by multiple clients, including assigning to the FSs both respective global identifiers and respective client-specific names, to manage the plurality of FSs using the global identifiers, and to store files for the clients in the FSs using the client-specific names.

The present disclosure will be more fully understood from the following detailed description of the embodiments thereof, taken together with the drawings in which:

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a block diagram that schematically illustrates a virtualized computing system, in accordance with an embodiment of the present disclosure;

FIG. 2 is a flow chart that schematically illustrates a method for cloning a Virtual Machine (VM), in accordance with an embodiment of the present disclosure; and

FIG. 3 is a flow chart that schematically illustrates a method for efficient cloning of a VM using a shadow virtual disk, in accordance with an embodiment of the present disclosure.

DETAILED DESCRIPTION Overview

Embodiments of the present disclosure that are described herein provide improved methods and systems for managing File Systems (FSs) for use by various types of clients, such as Virtual Machines (VMs) in virtualized computing systems. The embodiments described herein refer mainly to VMs, for the sake of clarity, but the disclosed techniques are not limited to VMs and can be used with any other suitable type of physical or virtual clients, such as physical machines, processes or containers.

In some embodiments, a storage management system operates in conjunction with a virtualization system (e.g., VMWare). The virtualization system creates and maintains a plurality of VMs, and the storage management system specifies and maintains network-based FSs for use by the VMs.

In the disclosed embodiments, the storage management system assigns one or more FSs to each VM. A given VM may be assigned any desired number of FSs. A given FS is typically accessible, however, only to a single VM, or in some cases to a single group of cooperating VMs.

In some embodiments, each FS is identified by two separate identifiers (IDs) a global FS ID, and a client-specific FS name. The global FS IDs are unique across the entire system. The client-specific FS names, on the other hand, are unique only within the subset of FSs assigned to a given VM. The global FS IDs are used for identifying the FSs in the storage management system.

The VMs are typically unaware of the global FS IDs of the FSs, and identify the FSs only by their client-specific FS names. To maintain the FS configuration described above, the storage management system typically holds a list that specifies, for each FS, (i) the global FS ID, (ii) the client-specific FS name, and (iii) the identity of the VM that is assigned that FS and permitted to access the FS.

The dual naming scheme described herein has several important advantages: (i) simple and efficient cloning of clients, especially VMs and Containers; (ii) improved management of namespaces that leads to better security and protection, and (iii) enables better support for self-service and multi-tenancy; and solution for the “namespace pollution” issue, i.e., each client having visibility to an exceedingly large number of FS objects.

Example methods that clone VMs using the global FS IDs and client-specific FS names are described herein. Typically, a new VM cloned from a source VM is assigned a set of FSs, which have the same client-specific FS names as the corresponding FSs of the source VM, but new and globally-unique global FS IDs.

The virtualization system is typically unaware of the FS and its structure, and 30 regards the entire body of data stored for a given VM as a block-based virtual disk (VDISK). In some embodiments, the storage management system uses built-in VDISK cloning mechanisms of the virtualization system to expedite the FS cloning process described above. In such embodiments, the virtualization system creates and maintains a “shadow VDISK” corresponding to one or more of the FSs used by a VM. During routine operation of the VM, the allocated size of the shadow VDISK is continually adjusted to match the corresponding FS size, even though no data is actually written to the shadow VDISK. When the VM is cloned, resources (e.g., storage space) allocated to the shadow VDISK can be assigned to the new VM, thereby shortening the overall cloning time.

Additional techniques that use the shadow VDISK mechanism, e.g., for backing-up FSs using built-in block- level VDISK backup mechanisms of the virtualization system, are also described.

System Description

FIG. 1 is a block diagram that schematically illustrates a virtualized computing system 20, in accordance with an embodiment of the present disclosure. System 20 may includes, for example, a data center, a cloud computing system or a computing system that performs any other suitable function.

System 20 includes multiple compute nodes 24 that communicate with one another over a computer communication network 28. Compute nodes 24 are referred to herein as nodes, for brevity, and may include, for example, servers, workstations or any other suitable type of compute node. Nodes 24 may communicate over network 28 in accordance with any suitable network communication protocol, such as Ethernet or Infiniband. System 20 may include any suitable number of compute nodes of any type. Nodes 24 may be collocated or located in multiple geographical locations. The collection of nodes 24 is also sometimes referred to as a cluster.

Nodes 24 run multiple Virtual Machines (VMs) 36, which in turn run client applications. A given node 24 may run any suitable number of VMs. In the present example, each node 24 runs a hypervisor (HV) 40. The hypervisor functions as a virtualization layer that allocates physical resources such as CPU, memory, storage and networking to VMs 36.

In the present example, each node includes a CPU (not shown), volatile memory (not shown), one or more persistent storage devices 32, and a Network Interface Controller (NIC—not shown), which can be allocated by hypervisor 40 to VMs 36. Persistent storage devices 32 may include, for example, one or more Solid State Drives (SSDs) or Hard Disk Drives (HDDs).

Generally, not every node necessarily includes all types of physical resources. Moreover, a given VM may utilize physical resources that do not necessarily reside locally on the node on which the VM runs. Further alternatively, some physical resources may not be associated with any particular node 24 but with the system as a whole. For example, one or more of storage devices 32 may be separate from nodes 24, e.g., connected to network 2 8 individually or via some storage controller.

System 20 further includes a virtualization system 44 that manages the various VMs 36 running on nodes 24. Typical tasks performed by virtualization system 44 include creating new VMs, cloning VMs, and migrating VMs from one node 24 to another, for example. Virtualization system 44 may include a suitable commercial product such as VMWare=®, or any other suitable system. Virtualization system 44 typically runs on a certain processor (e.g., a standalone processor or a processor of one of nodes 24) that is connected to network 28 by a suitable network interface.

In some embodiments, system 20 includes a storage management system 48. System 48 manages data storage in persistent storage devices 32. Typically, system 48 uses the various storage devices 32 of the various nodes (and/or storage devices 32 that do not belong to the nodes) as a system-wide pool of persistent, non-volatile storage. Towards VMs 36, storage system 48 maintains multiple File Systems (FSs) that are used by the VMs for storing files in this persistent storage. Example techniques for maintaining this plurality of FSs are described in detail below.

In the present example, storage management system 48 includes a network interface 52 for communicating over network 28 with nodes 24 and virtualization system 44, a processor 56 that is configured to carry out the methods described herein, and a memory 60 that holds one or more FS data structures. In the embodiment of FIG. 1, 30 memory 60 holds a FS list 64 that lists the various FSs that processor 56 manages for VMs 36. As will be elaborated below, list 64 specifies for each FS a global FS identifier (ID), a client-specific name and the identity of the VM that is permitted to access that FS.

The configurations of system 20 and its various components shown in FIG. 1 , e.g., virtualization system 44 and storage management system 48, are example configurations that are chosen purely for the sake of conceptual clarity. In alternative embodiments, any other suitable system and/or system component configuration can be used.

For example, the virtualization system and the storage management subsystem may both run on the same processor or within the same computing platform. As another example, as noted above the disclosed techniques can be used with various types of clients, not necessarily VMs. As such, in some embodiments the virtualization system is omitted.

The different elements of nodes 24, virtualization system 44 and storage management system 48 may be implemented using suitable hardware, using software, or using a combination of hardware and software elements. In some embodiments, processor 56 includes a general- purpose processor, which is programmed in software to carry out the functions described herein. The software may be downloaded to the processor in electronic form, over a network, for example, or it may, alternatively or additionally, be provided and/or stored on non-transitory tangible media, such as magnetic, optical, or electronic memory.

File System Management Using Global and Client-Specific Naming

The client applications running on VMs 36, as well as the guest operating systems of the VMs, store data in files. For this purpose, processor 56 of storage management system 48 creates and assigns one or more File Systems (FSs) to each VM 36. Generally speaking, a given FS provides the VM with suitable protocols and data structures for storing files on storage devices 32.

Processor 56 maintains a plurality of FSs that are listed on list 64. A given VM may be assigned one or more FSs. A given FS, on the other hand, is typically accessible only to a single VM. In some alternative embodiments, though, a given FS is accessible to and used by a single group of cooperating VMs.

In the embodiments described herein, each FS is identified by two separate identifiers (IDs) a global FS ID, and a client-specific FS name (sometimes referred to a “global ID” and “client-specific name” for brevity). Each of these identifiers may include a numerical value, an alphanumeric string or any other suitable type of identifier. The global ID is referred to as an “ID” and the client-specific name is referred to as a “name” purely for the sake of clarity.

The two types of identifiers have different characteristics and play different roles. The global IDs are unique across the entire plurality of FSs on list 64, and thus across system 20. In other words, no two FSs in system 20 have the same global ID.

The client-specific FS names are unique only within the subset of FSs assigned to a given VM. Thus, a given VM cannot be assigned two FSs having the same client- specific name. On the other hand, it is quite possible that list 64 include multiple FSs having the same client-specific name, assigned to different VMs.

The global IDs are used for identifying the FSs in storage management system 48. The VMs are typically unaware of the global IDs of the FSs, and identify the FSs only by their client-specific names. A given VM is typically only aware of (and permitted to access) the FSs assigned thereto, and unaware of (and not allowed to 30 access) FSs assigned to other VMs. These permissions are configured by processor 56.

Virtualization system 44 is typically unaware of any of the identifiers, and is generally not exposed to the FS structure at all. From the perspective of the virtualization system, the data stored by the VMs is represented by virtual disks (VDISKs), or not at all.

FS list 64, which is created and maintained by processor 56, specifies the configuration explained above. As can be seen in FIG. 1 , list 64 specifies for each FS (i) the global FS ID, (ii) the client-specific name, and (iii) the identity of the VM that is assigned that FS and permitted to access it. In alternative embodiments, processor 56 may use any other suitable data structure or structures that specify the associations between VMs and FSs, the global IDs and the client-specific names.

The use of global and client-specific naming means that the storage management system and the VMs have different views of the storage system structure, and also that different VMs have different views of the storage system structure. Consider, for example, two different VMs that query processor 56 for the list of available FS. In response, each of the two VMs will receive from processor 56 a list of the client-specific names of the FSs assigned to that VMs. In some cases (e.g., when one VM is a clone of the other) the lists of client-specific names will be the same, but in fact belong to different FSs having different global IDs and possibly different content.

VM Cloning Using Global and Client-Specific Naming

The dual naming scheme described above lends itself to simple and efficient cloning of VMs. The term “cloning” means creation of an identical copy of an existing VM, including both machine configuration, operating system, applications and data content. After cloning, the original VM and the cloned copy will typically operate separately and would no longer remain identical. Cloning is useful, for example, for creating new VMs of a certain type from a predefined “template VM.” In the description that follows, the original VM, from which the clone is created, is also referred to as a source VM. The newly-created VM is referred to as “new VM” or “cloned VM.”

FIG. 2 is a flow chart that schematically illustrates a method for cloning a VM, in accordance with an embodiment of the present disclosure. The method begins with virtualization system 44 receiving a request (e.g., from an administrator) to clone a given source VM 36, at a cloning request step 70. In response, the virtualization system creates a new VM, at a VM creation step 74.

As part of the new VM creation process, the virtualization system typically specifies for the new VM an address (e.g., IP address or MAC address) with which the new VM is to communicate for obtaining network-based FS services. This address is associated with storage management system 48. Among other initialization tasks, the new VM starts communicating with the specified address.

Processor 56 of storage management system 48 is able to detect that a new VM was created, e.g., by detecting a request from a previously-unknown address (e.g., the MAC or IP address of the new VM). Moreover, processor 56 is able to detect that this VM is a clone, and identify the identity of the source VM from which the new VM was cloned.

Upon detecting the appearance of a new VM, processor 56 creates a new set of (one or more) FSs for the new VM, at a FS creation step 78. The new set of FSs includes a new copy of each FS used by the source VM. The newly-created set of FSs typically has the same structure, size and data content as the set of FSs of the source VM. The new copies may be created, for example, using a conventional copy operation, as a snapshot, or any other suitable cloning method.

At a naming step 82, processor 56 assigns a global ID and a client-specific name to each of the newly-created FSs of the new VM. Specifically, each newly-created FS of the new VM is assigned a new (globally unique) global ID, and assigned the same client-specific name as that of the corresponding FS (of the source VM). In other words, after cloning, the source VM and the cloned VM have two separate sets of FSs, having the same client-specific names but globally unique global IDs.

Virtualization system 44 starts the new VM, at a starting step 86. From this point, the new VM operates separately from the source VM. As such, the structure and content of the new VM's FSs will typically diverge from those of the source VM.

VM Cloning Using Shadow VDISK

As explained above, the process of cloning a VM involves cloning the set of FSs to be used by the new VM, including FS structure (e.g., volumes, directories and files, relevant data structures and metadata), and data content (e.g., actual files and their data content). In many practical cases, the set of FSs to be cloned may be large and complex. Moreover, since most virtualization systems (such as VMWare's vSphere) are unaware of file system storage, the embedded cloning process does not handle the case of file system cloning at all.

In some embodiments, system 20 improves the existing VM cloning process and supports the creation of the new FSs by specifying, in advance, an artificial “shadow VDISK” for one or more of the file systems used by VM 36. This mechanism forces virtualization system 44 (which is only aware of VDISKs and is unaware of any FS structure) to process the cloning of those shadow disks, and such cloning can be the trigger of a file server side FS cloning. Triggering can be in response to identifying the copy operations on the shadow disk (which are implemented as a file or set of files within the file system), and/or can use the special cloning verbs that some systems provide (such as the VMWare VAAI with its block level XCOPY and NAS-level clone semantics). The actual copy can be done by a simple copy, a snapshot-based mechanism, or any other suitable copy mechanism.

FIG. 3 is a flow chart that schematically illustrates a method for efficient cloning of a VM using a shadow VDISK, in accordance with an embodiment of the present disclosure. The method begins with virtualization system 44 creating a VM, at a creation step 90. This VM is referred to as a source VM, even though at this stage there is typically no indication that this VM is going to be cloned in the future.

As part of the VM creation process, the virtualization VDISKs. These VDISKs are to be used for storing any suitable data for the VM, e.g., the VM's guest operating system, applications and application data.

In addition, virtualization system 44 creates a respective “shadow VDISK” for one or more of the file systems attached to this VM. In some embodiments, a shadow VDISK corresponds only to FSs that are dedicated to that VM (e.g., VM private FSs), not to FSs that are shared with other VMs. Unlike the regular VDISKs, the shadow VDISK is not used for storing data. The role of the shadow VDISK is to force the virtualization system to process the FS, required as part of the process of creating a new VM that will be cloned from the source VM being created at step 90.

During the routine operation of the source VM, at an operation step 94, the VM stores data in its FSs. In parallel, the storage management system adjusts the size of the shadow VDISK to match the size of the corresponding file system. As a result, the virtualization system expects its cloning process to take considerable time. Without such alignment, the virtualization system may give-up and abort the cloning as it takes too long.

Note that the shadow disk does not contain data, and the VM does not write to it. Nevertheless, the size of the shadow VDISK is adjusted to match the size of the corresponding file system. It is typically sufficient that the size of the shadow VDISK is maintained at approximately the same size of the file system, i.e., an exact match is not mandatory.

At a later point in time, the virtualization system receives a request to create a new VM that clones the source VM, and begins the cloning process, at a cloning step 98. As part of the cloning operation, the virtualization system clones both the regular VDISK (s) and the shadow VDISK(s) of the VM.

Since the shadow VDISK was continually maintained at approximately the same size as the corresponding FS, the necessary resource allocations (e.g., storage space) are already in-place. Thus, at a reallocation step 102, these resources are allocated for use by the new FSs of the new VM. This reallocation process is relatively short, and therefore this technique shortens and the overall cloning time.

In an alternative embodiment, the virtualization system does not adjust the size of the shadow VDISK along the lifetime of the VM, e.g., maintains the shadow VDISK with a size of zero. In such a case, the shadow VDISK is used only as a trigger for the actual cloning, but as the cloning process itself can be very fast (e.g., if a snapshot mechanism is used) , there is no need to align the expected cloning latency (time).

In some embodiments, the “shadow VDISK” technique can be used for other purposes. For example, storage management system 48 may use the shadow VDISK for backing-up FS. Typically, the virtualization system has built-in mechanisms for backing-up VDISKs. These mechanisms are typically at block-level and not file-level. By creating and maintaining shadow VDISKs, storage management system 48 may use these existing block-level backup mechanisms of the virtualization system to back-up file-level FSs.

Although the embodiments described herein mainly address managing FSs for use by VMs in virtualized environments, the methods and systems described herein can also be used in other applications, such as for managing FSs for other types of clients, as explained above.

It will thus be appreciated that the embodiments described above are cited by way of example, and that the present disclosure is not limited to what has been particularly shown and described hereinabove. Rather, the scope of the present disclosure includes both combinations and sub-combinations of the various features described hereinabove, as well as variations and modifications thereof which would occur to persons skilled in the art upon reading the foregoing description and which are not disclosed in the prior art. Documents incorporated by reference in the present patent application are to be considered an integral part of the application except that to the extent any terms are defined in these incorporated documents in a manner that conflicts with the definitions made explicitly or implicitly in the present specification, only the definitions in the present specification should be considered. 

What is claimed is:
 1. A computer-implemented method when executed by data processing hardware causes the data processing hardware to perform operations comprising: assigning a first file system to a first client; configuring, based on an identity of the first client, permissions for the first client to access the first file system; assigning one or more identifiers to the first file system; maintaining a list comprising: the one or more assigned identifiers; and the identity of the first client; receiving an indication to clone the first client; and in response to receiving the indication to clone the first client: creating a second file system that is a copy of a snapshot of the first file system, the second file system having at least one identifier that is different from the one or more identifiers assigned to the file system, the snapshot comprising: a structure; a size; and a data content; assigning the second file system to a second client; and updating the list based on the second file system and the second client.
 2. The method of claim 1, wherein the operations further comprise managing access to the first file system and the second file system based on the list.
 3. The method of claim 1, wherein the one or more identifiers assigned to the first file system comprise a client-specific identifier and a global identifier.
 4. The method of claim 3, wherein the global identifier of the first file system is unique.
 5. The method of claim 1, wherein the first client is assigned to a plurality of file systems.
 6. The method of claim 1, wherein a third file system is assigned and accessible to each of a group of cooperating clients.
 7. The method of claim 1, wherein the operations further comprise: receiving a request to clone a subset of the first file system; and cloning the subset of the first file system.
 8. The method of claim 1, wherein the operations further comprise continually maintaining a shadow virtual disk corresponding to the first file system.
 9. The method of claim 8, wherein the operations further comprise backing-up the first file system by performing block-level backup of the shadow virtual disk corresponding to the first file system.
 10. The method of claim 1, wherein the second client comprises a cloned copy of the first client.
 11. A system comprising: data processing hardware; and memory hardware in communication with the data processing hardware, the memory hardware storing instructions that when executed on the data processing hardware cause the data processing hardware to perform operations comprising: assigning a first file system to a first client; configuring, based on an identity of the first client, permissions for the first client to access the first file system; assigning one or more identifiers to the first file system; maintaining a list comprising: the one or more assigned identifiers; and the identity of the first client; receiving an indication to clone the first client; and in response to receiving the indication to clone the first client: creating a second file system that is a copy of a snapshot of the first file system, the second file system having at least one identifier that is different from the one or more identifiers assigned to the file system, the snapshot comprising: a structure; a size; and a data content; assigning the second file system to a second client; and updating the list based on the second file system and the second client.
 12. The system of claim 11, wherein the operations further comprise managing access to the first file system and the second file system based on the list.
 13. The system of claim 11, wherein the one or more identifiers assigned to the first file system comprise a client-specific identifier and a global identifier.
 14. The system of claim 13, wherein the global identifier of the first file system is unique.
 15. The system of claim 11, wherein the first client is assigned to a plurality of file systems.
 16. The system of claim 11, wherein a third file system is assigned and accessible to each of a group of cooperating clients.
 17. The system of claim 11, wherein the operations further comprise: receiving a request to clone a subset of the first file system; and cloning the subset of the first file system.
 18. The system of claim 11, wherein the operations further comprise continually maintaining a shadow virtual disk corresponding to the first file system.
 19. The system of claim 18, wherein the operations further comprise backing-up the first file system by performing block-level backup of the shadow virtual disk corresponding to the first file system.
 20. The system of claim 11, wherein the second client comprises a cloned copy of the first client. 